CVE Catalog

CVE-2024-33685

MediumCVSS 4.3
Published: Updated: Translated: NVD NIST

Summary

Startupzy has a missing authorization vulnerability that allows exploiting incorrectly configured access control security levels.

Risk Assessment

The organization may be exposed to unauthorized access to resources, potentially leading to data breaches or other serious security incidents.

Recommendation

It is recommended to review and improve the configuration of access control security levels in Startupzy to ensure proper user authorization.

Original NVD description (English source)

Missing Authorization vulnerability in Jegstudio Startupzy startupzy allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Startupzy: from n/a through 1.1.1.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS